Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/mwbEO71ZZJwRhj-XCyz6uNbyttA.roa
File: mwbEO71ZZJwRhj-XCyz6uNbyttA.roa (raw, json)
Hash identifier: 41JEOk2QE3KTco//iq1VFKqXlrXV9ckeTWHKt1X6wJU=
Subject key identifier: 9B:06:C4:3B:BD:59:64:9C:11:86:3F:97:0B:2C:FA:B8:D6:F2:B6:D0
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 0188BF922370FC2D042D31198B8F1E26F851
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/mwbEO71ZZJwRhj-XCyz6uNbyttA.roa
Signing time: Thu 15 Jun 2023 15:00:05 +0000
ROA not before: Thu 15 Jun 2023 15:00:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 45.82.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bf:92:23:70:fc:2d:04:2d:31:19:8b:8f:1e:26:f8:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Jun 15 15:00:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b06c43bbd59649c11863f970b2cfab8d6f2b6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f5:22:e4:3c:fd:a9:66:47:7e:92:b1:02:68:
66:ef:fe:ea:85:8b:26:20:24:87:6c:16:5f:a3:01:
0f:8d:eb:55:42:74:3c:67:5a:a6:55:47:70:22:07:
88:a9:59:cf:8c:a2:4b:87:be:67:d3:f4:6a:96:31:
a1:00:54:65:d8:59:d5:bc:4d:86:ed:1a:72:95:b6:
45:96:f1:6d:cf:12:84:3b:91:1c:1b:eb:49:cc:04:
07:88:39:6c:5a:3b:2d:60:e7:7f:56:2a:7f:8d:94:
4c:b3:8c:78:6f:65:39:60:8c:19:bc:cf:82:42:3a:
e2:2f:2b:e6:f0:b2:50:39:17:04:32:9f:a4:c4:13:
50:34:f9:94:8d:e1:84:5c:36:33:44:ec:12:e7:b7:
b7:23:ac:66:bf:87:e1:e5:46:a8:7d:03:0c:0b:2a:
cb:23:fb:67:3e:60:0d:48:f6:70:1e:55:a6:f2:21:
51:d4:66:da:4c:76:1b:aa:dd:ae:5c:e6:a2:0f:9e:
7d:2f:20:0b:9a:ed:4f:b1:73:18:42:65:4d:62:82:
4f:06:3f:79:54:d2:76:06:fb:bf:93:00:b8:1e:f0:
12:e2:63:69:79:c1:b5:92:a2:40:d5:60:a1:23:64:
fc:1c:76:25:62:59:98:74:1e:4b:28:bd:ec:58:6a:
b3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:06:C4:3B:BD:59:64:9C:11:86:3F:97:0B:2C:FA:B8:D6:F2:B6:D0
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/mwbEO71ZZJwRhj-XCyz6uNbyttA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.42.0/24
Signature Algorithm: sha256WithRSAEncryption
11:5f:ca:d3:74:60:14:57:f5:40:66:19:9a:88:3b:ea:f4:b7:
fe:2c:fa:ec:ac:a2:c0:f6:22:52:54:00:46:84:74:29:81:d5:
48:c3:c5:d0:23:0c:6b:da:81:07:5f:4a:1c:4d:39:c2:c3:cb:
f0:e0:97:1c:66:4d:fc:98:d8:92:da:a3:f6:b9:c1:a9:2e:74:
b6:f1:4e:63:24:37:f4:a5:d2:b2:38:52:51:c5:64:d5:73:32:
67:24:e2:db:bb:05:7c:98:5f:74:01:c1:b4:a2:55:0d:7d:13:
9c:0a:0e:6b:73:2c:0e:56:a9:43:d7:c3:9b:86:ae:3b:38:2d:
60:06:f0:7e:74:14:b1:9f:f7:04:a5:04:54:02:8f:96:f4:ed:
8b:ea:55:7b:99:22:9b:b5:5a:d9:3a:c8:45:50:f3:1f:6f:ca:
11:d8:09:c6:11:33:16:ab:90:d9:3e:01:45:43:4b:cc:59:61:
6a:79:ee:09:c9:bd:d3:52:39:5e:fd:56:aa:b4:7e:58:90:aa:
c0:b2:19:f2:11:fb:8d:68:2d:f5:b6:81:92:69:84:1e:65:59:
31:50:e9:76:3f:53:d6:12:bf:1b:7d:28:5f:f1:c8:70:16:06:
48:f6:e7:ce:a9:4e:eb:42:1a:79:c2:7a:e7:22:a9:b3:8d:59:
c6:18:c2:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:36 2025 by rpki-client